Re: [OPSEC] Operational Security Considerations for IPv6 Networks (draft-ietf-opsec-v6)

Ron Bonica <rbonica@juniper.net> Thu, 18 July 2019 15:02 UTC

Return-Path: <rbonica@juniper.net>
X-Original-To: opsec@ietfa.amsl.com
Delivered-To: opsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 22A31120779 for <opsec@ietfa.amsl.com>; Thu, 18 Jul 2019 08:02:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yRtDGI9T0zxP for <opsec@ietfa.amsl.com>; Thu, 18 Jul 2019 08:02:17 -0700 (PDT)
Received: from mx0a-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7181F120764 for <opsec@ietf.org>; Thu, 18 Jul 2019 08:02:17 -0700 (PDT)
Received: from pps.filterd (m0108156.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.0.27/8.16.0.27) with SMTP id x6IF0BrF011251; Thu, 18 Jul 2019 08:02:12 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=PPS1017; bh=OrQ2MihqH/MbfrT8hhX163hk1y4UhaSJU4SReHRtEu0=; b=KjFW4d8v/unZbv5jUpG/T9k0pserfgwpLra4HbtJWyNZ9sbzzy/vI9Y2CJL/4kESCgbf qo59P5GU/XHNrGtwASssfEWXT5G6p3b4+jo6tewOSzk3fkEigdcwq5heDIsRUM1fSQ4x 84s+Ar8fFhGRCxHIKUOQqhTuxV+wD2Wd4h0u6WNNwtv3IwxTOffv5jjUQcq3C5hCZEMg dnQzP7HVelI3ga0aFIxHStBDkWmpKw3Rz2H6ddzbkqqknr+oeqp+nW3WteZHTRP1OCzK 6+/hr9rACOmEs1vMa92n4QtxHXGh3hKEafvYdmb53AuVAFfsa4ie9WzEQ3GCiIJIVjwr bg==
Received: from nam04-sn1-obe.outbound.protection.outlook.com (mail-sn1nam04lp2059.outbound.protection.outlook.com [104.47.44.59]) by mx0a-00273201.pphosted.com with ESMTP id 2ttr6k0amq-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Thu, 18 Jul 2019 08:02:12 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=BtkT+Ya9XNzVxQZNTakFEiWeRgCW46pl/6fifZnDxG1oSlr4gB1SxwsvHJXakxxN7XOC00d+oZOappKBX3bahCTzxLGRH7SmLNGVjbLgeG5/2Q0Tq5ZOSnvnXegdyIC4xkHhKS1G1oVIaxZx1Hmk8QkTXMkBWWUYcmsEhhHYF9jvKaZT65CaNMNYhTUwJFhFowLvLbLspMqTJ9vjMc/9ASqI4UDVGB6Ma9BPR3MU53WWjZDPaGeNCUOLA63Q7eWlxP5TXmiZU7pEW9l7p7FwJfVI27u9cOLgIAwkUkLRYEvkLok1mv0fQbxTymNpOvrchHTrxgQGSrVPHV6YWEux7Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=OrQ2MihqH/MbfrT8hhX163hk1y4UhaSJU4SReHRtEu0=; b=GwrTLRGY2pjZGK7IUvimp3RCWV9CGu7iqOEVcrZPIy1TYWSkynOWYX/efc+HO9QYprwzIBaWE8OM2K/rC8z7XRtUc14EwIjL7qnABziCGgLeJXnhH0mk7MZIMm5UEaQF3MOYXu0JWXxyoFXhipiOIOodvhcxW3j3t/gWBbF0lngP7VrB53g2Q/kxpeEi65xoJAHEA79KZtCYAx/fFzgmCKnvjfL+WULRxPZ+xrOjYZsTdnZm2bWRRUt0gUUZAwrgbGIg57BlrrpPU+3K4GIuvpLcmSlFmzXsKSQHifqZM0+COgPvfBhXoleXYnnjs04psj+wVWQJpTMwnicuEcD5kQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1;spf=pass smtp.mailfrom=juniper.net;dmarc=pass action=none header.from=juniper.net;dkim=pass header.d=juniper.net;arc=none
Received: from SN6PR05MB5424.namprd05.prod.outlook.com (52.135.109.143) by SN6PR05MB5085.namprd05.prod.outlook.com (20.177.249.95) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2094.8; Thu, 18 Jul 2019 15:02:10 +0000
Received: from SN6PR05MB5424.namprd05.prod.outlook.com ([fe80::a8c7:83ed:3b1d:f33b]) by SN6PR05MB5424.namprd05.prod.outlook.com ([fe80::a8c7:83ed:3b1d:f33b%3]) with mapi id 15.20.2094.009; Thu, 18 Jul 2019 15:02:10 +0000
From: Ron Bonica <rbonica@juniper.net>
To: "Eric Vyncke (evyncke)" <evyncke@cisco.com>, Enno Rey <erey@ernw.de>, "opsec@ietf.org" <opsec@ietf.org>
Thread-Topic: [OPSEC] Operational Security Considerations for IPv6 Networks (draft-ietf-opsec-v6)
Thread-Index: AQHVPHkeVK6pRmxoXk+54ruAULfKoqbQeohQ
Content-Class:
Date: Thu, 18 Jul 2019 15:02:10 +0000
Message-ID: <SN6PR05MB54243A6B72874CBA3812B3E5AEC80@SN6PR05MB5424.namprd05.prod.outlook.com>
References: <851C8B13-6636-4336-82CB-2F2FC92C3FAE@cisco.com>
In-Reply-To: <851C8B13-6636-4336-82CB-2F2FC92C3FAE@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
dlp-product: dlpe-windows
dlp-version: 11.2.0.14
dlp-reaction: no-action
msip_labels: MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Enabled=True; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SiteId=bea78b3c-4cdb-4130-854a-1d193232e5f4; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Owner=rbonica@juniper.net; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SetDate=2019-07-18T15:02:08.9913175Z; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Name=Juniper Business Use Only; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Application=Microsoft Azure Information Protection; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ActionId=312a487f-82f4-4203-9e4d-1128ab79765c; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Extended_MSFT_Method=Automatic
x-originating-ip: [66.129.241.11]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 0de7c116-3211-40f6-760a-08d70b90e8b2
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(4618075)(2017052603328)(7193020); SRVR:SN6PR05MB5085;
x-ms-traffictypediagnostic: SN6PR05MB5085:
x-ms-exchange-purlcount: 5
x-microsoft-antispam-prvs: <SN6PR05MB50854654D37538F7CF57B1B1AEC80@SN6PR05MB5085.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:1051;
x-forefront-prvs: 01026E1310
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(366004)(376002)(39860400002)(136003)(346002)(396003)(51914003)(13464003)(199004)(189003)(33656002)(26005)(99286004)(9686003)(102836004)(53546011)(966005)(15650500001)(6506007)(68736007)(7736002)(6306002)(14444005)(11346002)(86362001)(7696005)(55016002)(305945005)(74316002)(186003)(6116002)(3846002)(66066001)(76176011)(229853002)(446003)(81166006)(2501003)(81156014)(256004)(8676002)(8936002)(76116006)(66446008)(486006)(64756008)(66946007)(66476007)(25786009)(53936002)(110136005)(2906002)(66556008)(52536014)(15974865002)(6246003)(71190400001)(6436002)(71200400001)(14454004)(478600001)(316002)(476003)(5660300002); DIR:OUT; SFP:1102; SCL:1; SRVR:SN6PR05MB5085; H:SN6PR05MB5424.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: wD0IUHaMkoqzgbGpx2p8jwzWLnye9sXWIhWeDuBE18KG3UbQlzqEgU0rFyLLi4y1JCC4JG2IdujysAimt2ojW6xa63/NHP0Ja/43qXUbBgkmhkGHvmgYnbB6LuxyZr1s9NsprmB/y7Gua1YWO3C8OnhUbhuFrHNwpOkdW55RlUPjKEG04Ej2FQjU5WPZtnZw+GWjPqF12PhMYVqueae8sKsprmpLnL/aOWogBdD5uyGGV0JH1rVNCO/MjIO8Kti7myEjPetiLO+7uqCGUpVAgpY/8M6Axx9GEyb8SSNFuS7Lu19Eo/Yu/wt+aTd45l2qaPFHAMJjuVKMf2lHQswiJ33+nvVLiF7EqNZWLzJY4JsKu7HD6bttrE8laggemym+HcGcyn4vckuYQ5aCUrIRdd2UEnb8UfV5vn1mZxFEqjk=
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: 0de7c116-3211-40f6-760a-08d70b90e8b2
X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Jul 2019 15:02:10.2341 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: rbonica@juniper.net
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN6PR05MB5085
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2019-07-18_07:, , signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1011 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1810050000 definitions=main-1907180157
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsec/7tfwxC8jAEqsWX-Z72wdTFEpyR8>
Subject: Re: [OPSEC] Operational Security Considerations for IPv6 Networks (draft-ietf-opsec-v6)
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsec/>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 18 Jul 2019 15:02:25 -0000

Let's chat about this draft next week.

                   Ron



Juniper Business Use Only

-----Original Message-----
From: OPSEC <opsec-bounces@ietf.org> On Behalf Of Eric Vyncke (evyncke)
Sent: Wednesday, July 17, 2019 4:25 AM
To: Enno Rey <erey@ernw.de>de>; opsec@ietf.org
Subject: Re: [OPSEC] Operational Security Considerations for IPv6 Networks (draft-ietf-opsec-v6)

Jen, Ron,

As co-author of the document, the latest -17 revision dated 2019-07-05 addresses (at least from the authors point of view):
- the comments received during the WG meeting at IETF-104
- the OPSDIR review by Tim Chown dated 2018-07-02
- the WGLC ended in 2017-09-29

The state of the document in the datatracker is still "Revised I-D Needed - Issue raised by WGLC" since 2017-09-29 though. As I was co-chair at that point of time, I should have reset the state to a more suitable one... Would you mind resetting the state to a more suitable one?

Note: I have requested a slot to present this work at V6OPS https://urldefense.proofpoint.com/v2/url?u=https-3A__datatracker.ietf.org_meeting_105_materials_agenda-2D105-2Dv6ops-2D03&d=DwIGaQ&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI&r=Fch9FQ82sir-BoLx84hKuKwl-AWF2EfpHcAwrDThKP8&m=tKDbeL1CoA61cOYB4qes-qPlA6OoF-JpHL8i4N-84R4&s=WFsvLndSkHeRVrxUEQ5XD1rud9aErI8WpU_d-fGG8F8&e= 

With all the reviews and the updates, may I kindly suggest, if the WG chairs and members agree, to request publication? Happy to talk to you in Montreal of course.

Thank you for considering this request,

-éric

On 06/07/2019, 18:43, "OPSEC on behalf of Enno Rey" <opsec-bounces@ietf.org on behalf of erey@ernw.de> wrote:

    Dear WG Chairs, All,
    
    we've considered & mostly incorporated the input from the mailing list (thanks for the latest reviews and comments!) and from the IETF104 session, and we'd hence like to ask for WGLC of the document.
    
    thanks
    
    Enno
    
    
    
    -- 
    Enno Rey
    
    ERNW GmbH - Carl-Bosch-Str. 4 - 69115 Heidelberg - www.ernw.de
    Tel. +49 6221 480390 - Fax 6221 419008 - Cell +49 173 6745902 
    
    Handelsregister Mannheim: HRB 337135
    Geschaeftsfuehrer: Florian Grunow, Michael Schaefer 
    
    =======================================================
    Blog: www.insinuator.net || Conference: www.troopers.de
    Twitter: @Enno_Insinuator
    =======================================================
    
    _______________________________________________
    OPSEC mailing list
    OPSEC@ietf.org
    https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_mailman_listinfo_opsec&d=DwIGaQ&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI&r=Fch9FQ82sir-BoLx84hKuKwl-AWF2EfpHcAwrDThKP8&m=tKDbeL1CoA61cOYB4qes-qPlA6OoF-JpHL8i4N-84R4&s=MMHNZoI8mO00UpKvIkSdMEJDVMiHIxjBDKuTmrFBQ30&e= 
    

_______________________________________________
OPSEC mailing list
OPSEC@ietf.org
https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_mailman_listinfo_opsec&d=DwIGaQ&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI&r=Fch9FQ82sir-BoLx84hKuKwl-AWF2EfpHcAwrDThKP8&m=tKDbeL1CoA61cOYB4qes-qPlA6OoF-JpHL8i4N-84R4&s=MMHNZoI8mO00UpKvIkSdMEJDVMiHIxjBDKuTmrFBQ30&e=